Java Buzz Forum - BandSite CMS and SmartSite CMS (PHP based) Root File Inclusion Vulnerability Discovered

Articles |
News |
Weblogs |
Books |
Forums

Artima Forums | Articles | Weblogs | Java Answers | News

Sponsored Link •

Java Buzz Forum
BandSite CMS and SmartSite CMS (PHP based) Root File Inclusion Vulnerability Discovered

0 replies on 1 page.

Welcome Guest
Sign In

Back to Topic List

Reply to this Topic

Search Forum

Threaded View


Previous Topic		Next Topic

Flat View: This topic has 0 replies on 1 page

Angsuman Chakraborty

Posts: 19816
Nickname: angsuman
Registered: Dec, 2003

Angsuman Chakraborty is the CEO and Chief Architect at Taragana

BandSite CMS and SmartSite CMS (PHP based) Root File Inclusion Vulnerability Discovered

Posted: Jun 21, 2006 11:59 PM

This post originated from an RSS feed registered with Java Buzz by Angsuman Chakraborty.
Original Post: BandSite CMS and SmartSite CMS (PHP based) Root File Inclusion Vulnerability Discovered Feed Title: Simple Thoughts - Java and Web Technology Blog Feed URL: http://tech.gaeatimes.com/index.php/feed/ Feed Description: News and views as a Software Architect and Entrepreneur on Java and Web Software.	Latest Java Buzz Posts Latest Java Buzz Posts by Angsuman Chakraborty Latest Posts From Simple Thoughts - Java and Web Technology Blog

Archit3ct and IR4DEX GROUP have discovered a vulnerability in SmartSiteCMS, which can be exploited by malicious people to compromise a vulnerable system. Input passed to the “root” parameter in include/inc_foot.php is not properly verified before being used to include files. This can be exploited to execute arbitrary PHP code by including files from local or external [...]

Read: BandSite CMS and SmartSite CMS (PHP based) Root File Inclusion Vulnerability Discovered

Previous Topic

Next Topic


	Web Artima.com